1084 matches found
Dev Web Management System 1.5 getfile.php cat Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/16063/info Dev Web Management System is prone to multiple input validation vulnerabilities. These issues may allow SQL injection and cross-site scripting attacks. Dev Web Management System versions 1.5 and earlier are pro...
Huawei E355 API验证绕过漏洞
CVE ID:CVE-2013-6031 Huawei E355是一款被称为WiFi猫的设备。 Huawei E355应用程序不正确限制对某些API函数的访问,允许攻击者利用漏洞绕过安全限制获取受限信息。 0 Huawei E355 21.157.37.01.910 目前没有详细解决方案提供: http://www.huawei.com...
CVE-2013-6058
SQL injection vulnerability in appRain CMF 3.0.2 and earlier allows remote attackers to execute arbitrary SQL commands via the PATHINFO to blog-by-cat/...
Sql injection
SQL injection vulnerability in links.php in MYRE Business Directory allows remote attackers to execute arbitrary SQL commands via the cat parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Vastal I-Tech phpVID 1.2.3 allow remote attackers to inject arbitrary web script or HTML via the 1 n parameter to browsevideos.php or the 2 cat parameter to groups.php...
linux/x86 - "man /bin/cat" shellcode 121 bytes
/ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x Official Website: http://www.1337day.com 0 1 x...
CVE-2011-5137
Multiple SQL injection vulnerabilities in tForum b0.915 allow remote attackers to execute arbitrary SQL commands via the 1 TopicID parameter to viewtopic.php, the 2 BoardID parameter to viewboard.php, or 3 CatID parameter to viewcat.php...
linux/x86 - execve(/bin/cat, /etc/shadow, NULL) - 42 bytes
/ Title: linux/x86 execve/bin/cat, /etc/shadow, NULL - 42 bytes Type: Shellcode Author: antrhacks Platform: Linux X86 / / ASSembly 31 c0 xor %eax,%eax 50 push %eax 68 2f 63 61 74 push $0x7461632f 68 2f 62 69 6e push $0x6e69622f 89 e3 mov %esp,%ebx 50 push %eax 68 61 64 6f 77 push $0x776f6461 68 2...
Supernews 2.6.1 - 'noticias.php?cat' SQL Injection
Supernews Date: 31/05/2012 Version: 2.6.1 Software Link: http://phpbrasil.com/script/vT0FaOCySSH/supernews ISRAEL Author will be not responsible for any damage. Vulnerable Code - noticias.php 30-31: 30. $idcategoria = formatDados$GET'cat'; 31. $query = mysqlquery"SELECT id, categoria FROM...
Supernews 2.6.1 - noticias.php?cat SQL Injection
Supernews 2.6.1 - noticias.php?cat SQL Injection Supernews Date: 31/05/2012 Version: 2.6.1 Software Link: http://phpbrasil.com/script/vT0FaOCySSH/supernews ISRAEL Author will be not responsible for any damage. Vulnerable Code - noticias.php 30-31: 30. $idcategoria = formatDados$GET'cat'; 31. $que...
CVE-2011-0646
SQL injection vulnerability in viewfaqs.php in PHP LOW BIDS allows remote attackers to execute arbitrary SQL commands via the cat parameter...
Sql injection
SQL injection vulnerability in catalog/index.shtml in 4site CMS 2.6, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the cat parameter. NOTE: the i and th vectors are already covered by CVE-2009-0646...
CVE-2010-4152
CVE-2010-4152 affects 4Site CMS 2.6 and earlier, with a concrete SQL injection vulnerability in the Catalog module. The issue is triggered via the cat parameter in catalog/index.shtml, and HTB reports additional vulnerable vectors in other modules (portfolio/index.shtml with i parameter, faq/inde...
SnoGrafx - cat.php?cat SQL Injection
SnoGrafx - cat.php?cat SQL Injection SnoGrafx cat.php?cat SQL Injection Vulnerability Author : CoBRa21 Author Web Page :http://ipbul.org Dork : "powered by SnoGrafx" Download Page : http://snografx.com/ Sql Injection: http://localhost/path/cat.php?cat=2' Sql Thanks cyber-warrior.org & e-banka.org...
PhotoPost PHP 4.0 - 4.6 SQL Injection
Exploit Title: PhotoPost PHP SQL Injection Vulnerability Date: 23/07/2010 Author: Cyber-sec Software Link: www.photopost.com Version: 4.0 - 4.6 Tested on: windows xp pack 3 CVE : N/A --------------------------exploit------------------------------ dork : Powered by: PhotoPost PHP 4.6 exploit:...
SnowCade 3.0 - SQL Injection
/ - SnowCade v3 SQL Injection Vulnerability - ---Date : 2010-06-19 ---Author : ahwak2000 ---Email : z.u5athotmail.com - Script Info - ---Home : http://www.arcadecreate.com/ - Vulnerability - http://site.com/path/index.php?action=browse&cat=SQL INj...
Remote file inclusion
PHP remote file inclusion vulnerability in picturelib.php in SmartISoft phpBazar 2.1.1 allows remote attackers to execute arbitrary PHP code via a URL in the cat parameter...
Realtor Website System E-Commerce SQL Injection
=============================================== Realtor WebSite System E-Commerce SQL Injection Vulnerability =============================================== .----..--.--.| |--..-----..----.| |.-----..-----. | || | || || -|| || || || | ||| ||||||| ||||| | || || Realtor WebSite System E-Commerce S...
Realtor WebSite System E-Commerce idfestival SQL Injection Vulnerability
Exploit for php platform in category web applications ======================================================================== Realtor WebSite System E-Commerce idfestival SQL Injection Vulnerability ======================================================================== Author : CoBRa21 Script...
Realtor WebSite System E-Commerce SQL Injection Vulnerability
Exploit for php platform in category web applications ============================================================= Realtor WebSite System E-Commerce SQL Injection Vulnerability ============================================================= .----..--.--.| |--..-----..----.| |.-----..-----. | || | ...